We have had an incident in which 'someone' has access the network logged onto a machine in which they install logmein, or they compromised the logmein session that was on that machine.

The logemin access was logged was visible from the event view and we have several IP addresses. We have tracked these down to the ISP BT Broadband.It took 2 months for Virgin Broadband to supply this information to the police in a case were a computer system was stolen and reported to them.

Now in my experience you have to get the police involved so that they can use under the Regulation of Investigatory Powers Act 2000, if they think the case is worth taking on that is!

Any other ideas in tracing the location? Tried Mindmap and other basic Traceroute sites.